2013/10/3 Axel Grosse <agrosse@axway.com>
Hi Ben, Dieter
can we focus on LDAPS because TLS1 is not an option and even if LDAPS is deprecated I should be able to configure it ..

TLSCACertificateFile /etc/openldap/ssl/VordelCA.crt
TLSCertificateFile /etc/openldap/ssl/VordelDev.crt
TLSCertificateKeyFile /etc/openldap/ssl/VordelDev.key
TLSVerifyClient never


are this entries in the slapd.conf sutable for LDAPS ?
if not whats missing ?

start the server with
/usr/sbin/slapd -h ldap://192.168.30.169:636 -u ldap



Use "-h ldaps://192.168.30.169 " in slapd start command.


Clément.